Lucene search
K

83 matches found

Vulnrichment
Vulnrichment
added 2025/08/20 12:0 a.m.5 views

CVE-2024-57491

Authentication Bypass vulnerability in jobx up to v1.0.1-RELEASE allows an attacker can exploit this vulnerability to access sensitive API without any token via the preHandle function...

7AI score0.00328EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/20 12:0 a.m.4 views

CVE-2024-57152

Incorrect access control in the preHandle function of my-site v1.0.2 allows attackers to access sensitive components without authentication via the cn.luischen.interceptor.BaseInterceptor class...

7.2AI score0.00348EPSS
Exploits1References1
CVE
CVE
added 2025/08/20 12:0 a.m.25 views

CVE-2024-57491

CVE-2024-57491 affects jobx (up to v1.0.1-RELEASE). The vulnerability is an authentication bypass in the preHandle function, allowing access to sensitive APIs without a token. CVSSv3.1 base score 8.8 (HIGH) with network attack vector, low attack complexity, no privileges required, user interactio...

8.8CVSS7AI score0.00328EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.5 views

Jeewx-Boot 安全漏洞

Jeewx-Boot is an official JEECG open source open source microsoft housekeeping platform. A security vulnerability exists in Jeewx-Boot version 1.3, which stems from an authentication bypass vulnerability in the preHandle function...

9.8CVSS7AI score0.00492EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/13 9:25 a.m.7 views

CVE-2025-8838

A vulnerability has been found in WinterChenS my-site up to 1f7525f15934d9d6a278de967f6ec9f1757738d8. This vulnerability affects the function preHandle of the file /admin/ of the component Backend Interface. The manipulation of the argument uri leads to improper authentication. The attack can be...

9.8CVSS7.4AI score0.00543EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/08/11 3:35 p.m.19 views

CVE-2025-8756

A vulnerability has been found in TDuckCloud tduck-platform up to 5.1 and classified as critical. Affected by this vulnerability is the function preHandle of the file /manage/ of the component com.tduck.cloud.api.web.interceptor.AuthorizationInterceptor. The manipulation leads to improper...

8.8CVSS7.2AI score0.00337EPSS
Exploits1References1
NVD
NVD
added 2025/08/11 9:15 a.m.7 views

CVE-2025-8838

A vulnerability has been found in WinterChenS my-site up to 1f7525f15934d9d6a278de967f6ec9f1757738d8. This vulnerability affects the function preHandle of the file /admin/ of the component Backend Interface. The manipulation of the argument uri leads to improper authentication. The attack can be...

9.8CVSS0.00543EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/08/11 8:32 a.m.2 views

CVE-2025-8838 WinterChenS my-site Backend admin preHandle improper authentication

A vulnerability has been found in WinterChenS my-site up to 1f7525f15934d9d6a278de967f6ec9f1757738d8. This vulnerability affects the function preHandle of the file /admin/ of the component Backend Interface. The manipulation of the argument uri leads to improper authentication. The attack can be...

7.5CVSS7.3AI score0.00543EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/08/11 8:32 a.m.13 views

CVE-2025-8838 WinterChenS my-site Backend admin preHandle improper authentication

A vulnerability has been found in WinterChenS my-site up to 1f7525f15934d9d6a278de967f6ec9f1757738d8. This vulnerability affects the function preHandle of the file /admin/ of the component Backend Interface. The manipulation of the argument uri leads to improper authentication. The attack can be...

7.5CVSS0.00543EPSS
Exploits1References6
CVE
CVE
added 2025/08/11 8:32 a.m.28 views

CVE-2025-8838

WinterChenS my-site (Backend Interface) is affected in the preHandle function for /admin/. The flaw arises from manipulating the uri argument, causing improper authentication. Exploitation is described as remote and publicly disclosed, with the real existence of the vulnerability doubted in some ...

9.8CVSS7.3AI score0.00543EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/11 12:0 a.m.4 views

PT-2025-32531 · Winterchens · My-Site

Name of the Vulnerable Software and Affected Versions: WinterChenS my-site affected versions not specified Description: A vulnerability exists in the preHandle function of the /admin/ file within the Backend Interface component. Manipulation of the uri argument results in improper authentication...

7.5CVSS7.1AI score0.00543EPSS
Exploits1References12
NVD
NVD
added 2025/08/09 3:15 p.m.6 views

CVE-2025-8756

A vulnerability has been found in TDuckCloud tduck-platform up to 5.1 and classified as critical. Affected by this vulnerability is the function preHandle of the file /manage/ of the component com.tduck.cloud.api.web.interceptor.AuthorizationInterceptor. The manipulation leads to improper...

8.8CVSS0.00337EPSS
Exploits1References5
OSV
OSV
added 2025/08/09 3:15 p.m.4 views

CVE-2025-8756

A vulnerability has been found in TDuckCloud tduck-platform up to 5.1 and classified as critical. Affected by this vulnerability is the function preHandle of the file /manage/ of the component com.tduck.cloud.api.web.interceptor.AuthorizationInterceptor. The manipulation leads to improper...

8.8CVSS7AI score
Exploits0References5
Cvelist
Cvelist
added 2025/08/09 2:32 p.m.13 views

CVE-2025-8756 TDuckCloud tduck-platform manage preHandle improper authorization

A vulnerability has been found in TDuckCloud tduck-platform up to 5.1 and classified as critical. Affected by this vulnerability is the function preHandle of the file /manage/ of the component com.tduck.cloud.api.web.interceptor.AuthorizationInterceptor. The manipulation leads to improper...

6.5CVSS0.00337EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/08/09 2:32 p.m.4 views

CVE-2025-8756 TDuckCloud tduck-platform manage preHandle improper authorization

A vulnerability has been found in TDuckCloud tduck-platform up to 5.1 and classified as critical. Affected by this vulnerability is the function preHandle of the file /manage/ of the component com.tduck.cloud.api.web.interceptor.AuthorizationInterceptor. The manipulation leads to improper...

6.5CVSS7.2AI score0.00337EPSS
Exploits1References5
CVE
CVE
added 2025/08/09 2:32 p.m.26 views

CVE-2025-8756

TDuckCloud TDuck-Platform (versions up to 5.1) contains a vulnerability in the preHandle function of the AuthorizationInterceptor at /manage/ (component com.tduck.cloud.api.web.interceptor.AuthorizationInterceptor) that enables improper authorization. A remote attack is possible, and the exploit ...

8.8CVSS7.2AI score0.00337EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/13 11:32 p.m.4 views

CVE-2025-7552 Dromara Northstar Path AuthorizationInterceptor.java preHandle access control

A vulnerability was found in Dromara Northstar up to 7.3.5. It has been rated as critical. Affected by this issue is the function preHandle of the file northstar-main/src/main/java/org/dromara/northstar/web/interceptor/AuthorizationInterceptor.java of the component Path Handler. The manipulation ...

6.5CVSS7.2AI score0.00273EPSS
Exploits0References6
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

DEBIAN-CVE-2022-49303

In the Linux kernel, the following vulnerability has been resolved: drivers: staging: rtl8192eu: Fix deadlock in rtwjoinbsseventprehandle There is a deadlock in rtwjoinbsseventprehandle, which is shown below: Thread 1 | Thread 2 | settimer rtwjoinbsseventprehandle| modtimer spinlockbh //1 | wait ...

5.5CVSS5.4AI score0.0016EPSS
Exploits0References1
OSV
OSV
added 2025/01/09 3:15 a.m.4 views

CVE-2024-13200

A vulnerability, which was classified as critical, was found in wander-chu SpringBoot-Blog 1.0. This affects the function preHandle of the file src/main/java/com/my/blog/website/interceptor/BaseInterceptor.java of the component HTTP POST Request Handler. The manipulation leads to improper access...

7.5CVSS5.5AI score0.00471EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.5 views

SpringBoot-Blog 安全漏洞

SpringBoot-Blog is a Java blogging system for wand individual developers. A security vulnerability exists in SpringBoot-Blog version 1.0, which originates from the preHandle function in file src/main/java/com/my/blog/website/interceptor/BaseInterceptor.java that can lead to improper access contro...

7.5CVSS7.4AI score0.00471EPSS
Exploits1References5
Rows per page
Query Builder